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(54) Crypt key system for broadcast programmes 

(57) The invention relates to a crypt key system 
applicable to a television system, a database system or 
an electronic commercial transaction system Or the like. 
This system consists of a broadcasting station 1 1 , a 
database 12, a receiving apparatus 14, a data commu- 
nication apparatus J S and a user .terminal 18. As a crypt 
key system,^ a : ^ecfet^Key qryptosystem, a public-key 
cryptosystem, and a digital signature system are used. 
The keys used in the system are either encrypted or 
remain uncrypted to be supplied fay broadcasting. The 
present invention is effective in the prevention of an 
unjustified use of the database system, managing cop- 
yrights, and in a pay-per-view system and a video-on- 
demand system. Further, the present invention is effec- 
tive in realizing an electronic market which uses an elec- 
tronic data information system. 
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Description , n . m> recorded to supply the viewing permit key with IC cards 

. : f , , , - . or the like and use a specif ic data. 

Background of the Invention In addition, in r these days of information- oriented 

society, a database system has been propagated for 

Field of the Invention 5 mutually using, data which, are kept independently: by . 

each computer by constituting a computer communica- 

The present invention relates to a crypt key system :c tion network by LAN (local area network), WAN (wide 

that is used in a commercial, trade or the like which uses : « - area network) , and Inter-Net system mutually connecting? 

a television system, a database system or an electronic > ; : < these networks. - 

data interchange ^ , . : 10 In the meantime, .a technology has been developed 

r-. v . for reducing 4he information amount by compressing a i 

Prior Art television moving picture signal which couklnot be digir 

, r tized becausepf a huge amount of information as a result 

In information oriented society of today, in addition of digitization, to enable practical digitization. So far, 

to a normal- terrestrial broadcasting, satellite broadcast- >/5 H.261 standard for video conference, JPEG floint photo- 

ing which is referred to as a broadcasting satellites (BS)> graphic image coding experts group) standard for static 

and communication satellites (CS) or cable TV broad- pictures, MPEG 1 (moving picture image coding experts 

casting which is referred to as CATV (cable television) . - groups ) standard fortstoring pictures and MPEG 2 cor-; 

using coaxial cables or optical cables is getting preva- w . responding to the present telecast and the high- defini- 

lent - ■ ; .. 20 tipn telecast from the television broadcasting are 

In a satellite broadcasting or CATV broadcasting prepared, 
which distributes several tens of channels at the .same f The digitization technology using these picture corn- 
time, scrambled channels of such as f Urns, sport events, . pression technology is used for the television broadcast- 
and music which cannot be viewed through a compre- w? ing or -the^ video ^picture recording. In addition, even 
hensive. contracts are provided in addition to unscram- 25 television, moving picture data, which could not be dealt 
bled general channels. In order to .view these channels, ~. c . w with before can be dealt with now. Then, the -multimedia 
it is necessary to subscribe to descramble the channels • , o : system? which deals with various data dealt with by the 
however, normal subscription period is about pne^momh computer and the digitizedteievision moving picture data, c 
unit, and it is impossible toyiew through temporary con-fi;,. • has been focused as a future technology, 
tracts, r •* , . { T . : , , so : This multimedia system :is ,also incorporated in the 
The jnventpr of the present invention proposed in the _ . data communication and can be used as one data on the 
Japanese Patent Application ,Laid-Open No. 6-4641 9 rj , & database. ^ . 
and the Japanese Patent Application iaid^Open No.6- While the scope of usage of the database is 
1 41 004 a.system in which users obtain a viewing permit; ; . expanded; the method for charging for the data usage 
key from a.charging center via a communication line and 35 on the database, and.the method for dealing with copy-; 
charged, and descrambles programs scrambled each by . ;J > right problems generated by :copying, transmitting other 
respectively different scramble pattern, using the viewing , than direct usage of data, and also the secondary exploi- 
permit.key to view the programs; proposed in theJapa- tation right problem generated.as a.result of data edition 
nese Patent Application Laid-Open No: .£-132916 an --,n have become inportant problems., U 
apparatus for the qDeration. , ^. ?0 : f 4p « To safely deal with charging and copyrights process, 
In these system and apparatus, those who wish to , it is required that the data cannot be used by users' other " 
use scrambled programs, request for viewing to the : i than authorized users, and data encryption is the best 
charging center, via a communication line by using a ;r means for it. i \ 
communication apparatus. The charging center trans--:- In addition, an electronic market system has been 
mits the viewing permit key to ; the communication appa- . : *5 investigated for converting information in various kinds 
ratus corresponding to the request for viewing while- - > of transaction which has been carried out by paper doc- 
charging and collecting a fee.i A * - . « .r* ni uments so far, into an electronic data to execute elec- 
Users, on receiving the viewing permit key with the - tronic transaction by uising the -erectronic data 
communication apparatus, transmits the viewing permit ; interchange for transmitting and receiving data by the 
key via direct ., means ^connecting : the communication so data communication technology. In addition, an ihvesti- 
apparatus and the receiving apparatus or via indirect - 3 gation is also made on the possibility of carrying out an 
means such, as flexible disks-or the like., The receiving < electronical; settlement on ,the electronic, commercial 
apparatus to which the viewing permit key is transmitted .0 transaction system • ■ > ^.r 
descrambles the programsswith the viewing. permit key ;r In. the commercial transactions, the reliability on the 
and then, the users use the programs. 35 transaction details is required and the security in the set- 
Japanese Patent Application Laid-Open No. 6: tlement is required. Consequently; in the electronic com- 
132916describesasystemandanapparatusforselland * mercial transaction system and electronic settlement 
rent of a tape or a disk on which a plurality of data scram- system, in which such reliability and security are 
bled with a different scramble pattern respectively are ■ * *. . 
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demanded, it is required that the 'data is encrypted so 
that the data will not be falsified or used unjustrf iedly. • 

In these television system, database system or elec- 
tronic commercial transaction systeiti or trfe1ike?the data 
is encrypted and thus a crypt key is required for decrypt- '•' 
ing the encrypted data to us. And the crypt key must be- 
gi vento data users; however, the processing is Very trou- 
blesome because security and reliability-are demanded. 

In the structure of the present invention, data cryp- 
tology acts an important part. In the beginning, a- general 
explanation will be made on the data cryptology; 

In the data cryptoldjgy, the casfe in whichtheplaintefct ' 
data M is encrypted by using a crypt key K tcr obtain a 
cryptogram datarC is tepresented: ci :. 

,J C=E^K, M), ' 

7. *»x : * . ' < -;r» ■ ^ .. •. 11 

and the case Fri which the cryptogram data C isdecrypfed - 
by using the crypt key K to obtain the plaintext data M' is 
represented: * - 1 r - 



75 



so 

*c. 



s : M=D (K. C)* S 

• " s. . «- " •'*: ~- . • 

As a typicah method for me xiata- cryptography «t€fch- 
nology. there are a secret-key cryptosystem and rfpublic- * 25 
key cryptosystem. Trte seeret-key cryptosystem iV-a - ^ 
cryptosystem in whrchsamese^ef K&y Ks is commonly^ 
usedinrencryptipn and decrypttontes ro.'L sr.'t^oi etLjrroc 



M=D (Ks, Cmks) 



The public- key cryptosystem.isa'Cryptosyfetem irr 
which a key for encryption arid^a key for decryption are 
used as crypt keys, and the keyforehcryptron is laid open 
but the key for decryption is not open ^Thekey tor eneryp- < - 
tion is ref erred to as a publtekey Kb while the k£y_for 
decryption is referred to as a private-key Kv. To usePthis 
cryptosystem- anjnformation sender:ertCFypts thfe plain- 
text data M by, the pubic-key Kb of a receiver 

Cmkb=E (Kb, M), 
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and the receiver receives the data 'and decrypts" it by &**4S 
private-key Kv to obtain the plaintext dfcta^M v: 

^vMoD (Kv, Cmkb). </! t.i 



In this public-key ctVptosystem.'cryptahalysis is very dif- - 
f icult : , t ;';\:..z . : J - . « * ' • - n 
As an application of the data cryptography technol- 
ogy, digital signature is performed as an electronic data 
authentication means to ensure therefiabiKty of the data. 

, The digital signature is used a secret key or a pubfic- 
key. Generally, the public-key is used in the digital signa- 
ture. s> 
In the digital signature which is carried out by using ? 
the public-key, the signer obtains a digital signature by 



Cj' 

-\;. I 

''SO 



'55 



encrypting a document m to which the document M is 
compressed with hash algorithm, using the private-key 
Kv of the signer: u ■-. 

Smkv=E (Kv, m) r; - 

and transmits the original -document M or the com- 
pressed document m and the digital signature Smkv to 
the receiver. : ■ - < . * ■ '-a >.* 

The receiver decrypts the digital signature Smkv by 
using the public-key Kb of the signer 

m'=D (Kb, Smkv). 

When m'=m is established, it is recognized that the sig- 
nature is correct. * • 

As a method for providing these crypt keys to iisers, 
the inventor of the present invention propbsed an inven- : 
tion entitled "crypt key system" in the prior Japanese Pat- 
ent Application No. 6-70643. 

Irrthfe generally practiced crypt key system, the crypt 
key is provided only to users while the crypt key is pro- 
vided to persons other than the users in the crypt key 
system 6f thispri'br irWention? : • 

Fig;" 1 -^shows' the structure bf the crypt key system 
proposed in : the Japanese Patent Applications No. '6- 
70643^ - r ' ^ * * z-it ' -r • - o. •.■c ;, .-,..i.w ^ \ • ■ *. ' 

TOis r §yst^TOirpri$^ab ' 
multif^ bttadcast^ sucK as BS^S^Srtes6iaf br6Sd- 
casting or FM or the like or data broadcasting, a data- 
base 2\ & charging cfenter3, a receiving apparatus ^'4, 
data communication apparatus 5 and abuser's terminals. 

The broadcasting station 1 and the database 2, ahd 
the database 2 ahd the charging center 3 are Connected 
to each other via a communication line such as ^dedi- 
cated linedrthelikedrflexiblediscorthelike 1 . Th^data- 
base 2 and the cfata communication apparatus 5 are 
connected by a cdmmuhicatibn line 7 such as a^ommu- 
nication linew CATV line. ; - 
The broadcasting station 1 and the receiving apparatus 
4 are connected with the broadcasting radio wave 6 The 
receiving apparatus 4 and the user terminal apparatus 
8, and the data c»mmuhic»tibn'apparatus5 ahd the user 
terminal 8 are connected with a direct me&hs such as a 
connection c&bte dr an indirei^t ^means' such as ^flexible 

In Fig. 1 , what is shown with ta solid line is a path of 
inform^tibn which is nbt:encryptekf;Whaf is 'shown with 
a brdken line is a path of data which is encrypted. 5 

rn this system, the database 2 prefimirlarily supplies 
a permit key Kp (hereinafter deferred to as a "permit key") : 
including ; the crypt key Kd which -is different from one 
data to another to the broadcasting station 1 . The permit 
key Kp is explained in such a mariner that the permit key 
Kp constitutes the crypt key Kd only for better under- 
standing. • 'y > • 

In some cases, the crypt key Kd is supplied without 
being encrypt&d, and in other cases, it is encrypted by 
using the common crypt key K0 
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CkdkO=E(KO, Kd), - : ..r-2 

and is supplied as an encrypted crypt key CkdkO. 

In the case where the crypt key Kd is encrypted and. f 
supplied, a common crypt key KO for decrypting the s 
encrypted crypt key CkdkO is supplied to usere. This * ? un- 
common crypt key KO is supplied when users register 
with the database, or it is supplied to the users together 
with the encrypted data Cmkd when the encrypted data ~> - 
Cmkd is transmitted: - ; ' . • , io 

(a) In the case where the crypt key is not encrypted : s ■ 

In this crypt key system, the broadcasting station 1 . a 
broadcasts the crypt key Kd supplied from the database is 
2, by using the radio wave 6. 

The* receiving apparatus 4 supplies the received; 
crypt key Kd to the user terminal 8 so that the user ter- 
minal 8 stores the received crypt key Kd in a recording -r- 
medium such as a semiconductor memory, a flexible so 
disc, a hard disc or the like. s 

The users who wish to use the data request for the ? i* 
use of the data M to the database 2 via the communica- <?* 
tion line 7 by using the data communication apparatus 5. T 

The database 2 which has received>the request for ^25 
use of the data M encrypts the data M by the crypt key r 
Kd which is a permit key Kp ~ \n . : n-a r. r o j a 

•• tf.:rs ^><3i->c£^.: .*..«: «■ J- ;o 3* J ■/ "AC *.o 

- > >^ Gmkd=E (Kd, M), r:ni-~>^. :,r*onz rr 
* . > i •.■."< j ; " * :' v -i.*^ - r z : »v qo 
and transmits the encrypted data Cmkd to the data com- > 
munication apparatus 5 of users via the communication- 
line 7 and charges with the charging center 3. ^ 

The data communication apparatus 5 supplies the* 1 
received encrypted data Cmkd to the user terminal 8 35 
while* the user terminal 8 decrypts the encrypted data 
Cmkd by the crypt key Kd which is stored in the recording 
medium v 

M=D (Kd, Cmkd). -i 

(b) In the case where the crypt key is encrypted and the 
common crypt key is preliminarily distributed to users: 

In this crypt key system, when users register to use 45 
the database, the common crypt key KO is supplied to ~ 
users with the recording mediumsuch as ROMorflexibie 
disc and the supplied common crypt key KO is stored in 
the user terminal 8. r ■ -~ 

The database 2 encrypts the crypt key Kd by using so 
the common crypt key KG ~ - 

" ' Ckdk0=E (KO. Kd); 

and supplies encrypted crypt key CkdkO to the broad- : 55 
casting station- 1 : ■ v ^ 

The broadcasting station 5 1 broadcasts the received • 
encrypted crypt key CkdkO supplied from database 2 by ! 
using the radio wave 6. 



The: receiving apparatus 4 supplies the received 
encrypted crypt key CkdkO to the user terminal 8 which 
decrypts the encrypted crypt key CkdkO in the beginning 
by the preliminarily stored common crypt key KO 

Kd=D (KO, CkdkO), 

and stores the decrypted crypt key Kd in the recording 
medium such as a semiconductor memory, a flexibledisc 
or a hard disc; * ,; - *:•-:• t: - 

Users who wish to use the data requests for the use 
of the data M to the database 2 via the communication 
line 7 by using the data communication apparatus 5. 

The database 2 which receives the request for the 
data usage encrypts the data M which is demanded for 
usage encrypts data M by the crypt key Kd 

. CmkdssE (Kd, M), 

and transmits it to the data communication apparatus 5 
via the communication line 7 and chargess with- the 
charging center 3. ■ ~c ■ ~ 

Thedata communication apparatus 5 supplies the 
received encrypted data Cmkd to the user terminal 8 
which decrypts the encrypted data*Cmkd by the stored 
cryptkey-Kd w : . t -ft* + ** z * 

■< ,,v p^v..-,c* ■:. 1 -j _ • m ij^j; - r.i • ~* ;., . r 
M=D (Kd, Cmkd); ~ v ^ c> mc- -s. 

(c) lit the case where the ir crypt key i$ f encrypted and the 
common crypt key is distributed tathe user together with 
the encrypted data: v . - j : ; 

In this crypt key system, the'database 2 encrypt the 
crypt key Kd by the common crypt key KO 

CkdkO=E (KO, Kd) 

and supplies it to the broadcasting station 1 . 
"* The broadcasting station 1 broadcasts the 
encrypted crypt key CkdkO which has been supplied 
from the database 2;- by using the radio wave jB. 

The receiving apparatus 4 supplies the received 
encrypted crypt key CkdkO to the user terminal 8. The 
user terminal 8 stores the encrypted crypt key CkdkO in 
recording medium such as a semiconductor memory, a 
flexible disc, or a hard disc or the like. 

Users who wish to use the data request for the use 
of the data M to the database 2 via the communication 
line 7 by using the data'commiurycatibn^apparatus 5. 

The database 2 which receives the request for the 
data usage encrypts the data M which is demanded for 
use by the crypt key Kd - t ... 

•■".'.'> ; v . .■ :r „*.v- tr ■ :* 

Cmkd=E (Kd, M), 

and transmits it to the data communication apparatus 5 
via the communication line 7 together with the common 
crypt key KO and charges with the charging center 3. 
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The data communication apparatus 5 supplies the 
received encrypted data. Cmkd and the common crypt 
key KO to the user .terminal 8. The user . terminal ; 8 : 
decrypts the encrypted crypt key CkdkO which has been 
stored in the recording medium by the common crypt key § 
KO /- 

. . Kd=D (KO, CkdkO), w > , a* . v..-.. 

and decrypts the encrypted data Cmkd by the decrypted , 10 
crypt key Kd . :~ ■. 

v. 4 M=D(Kd,<Cmkd). : < u 

Summary of the Invention . r$ 

The present invention provides a concrete structure 
for applying the invention of the crypt key system 
described in the previous applications to the television 
system, ,the;database system or. the electronic commer- 
cial transaction system or the like: 

This system comprises a broadcasting station, a 
database, a receiving apparatus, a data communication 
apparatus.and a user terminal. As the cryptkey system, 
secret-key cryptosystem and the pubHc-key cryptosys- 25 
tern are used. In addition, the digital signature is used, v ■, 
and the crypt key is supplied through broadcasting with 
either encrypted or uncryptecO ,b/l) 0 -v\ 

The present invention is effective in the prevention 
from unjustified, use^or the copyright-management in the ' (3p 
database system, a pay-per-view system* or a video-on-r 
demand system. Furthermore, the present invention is a ; 
useful means in the realization of an electronic market 
using the electronic data interchange system, 

* • r /j: o ■ , 35 

Brief Description of the Drawings 

Fig. 1 is a structural view of a crypt key system 
according to the prior, applications.-, - ... x / r 

Fig. 2 is a structural :view of the cryptkey system^? 
according to a first embodiment of sthe presentjnyen- 
tion. -i.. .. , . <• 

Fig. 3 is a structural view of the, crypt key system ,45 
according to a second embodiment of the. present .. . . 
invention. s ... ; . ^i; o'.^r & y 

Fig; 4 is a structural jviewof the crypt key system - 
according ip third and fourth egabodiments of the so 
present jnvention. -. . V *' : .1 * <,vh 1 

Figs. 5(a), 5(b) and 5(c) are structural views of fcfth : . 
embodiment to which the present invention is 
applied. .*'.</ r\ & 



Embodiments ..v 

Embodiments of the present .invention will be * 
described by .using Figs. 2 through 45/ i * « - ■ • 

[Embodiment 1] : >vl -if^s 

A system shown in Fig. 2 is. a cryptkey system of 
the embodiment 1 in which the present; invention is 
applied to a database system. This system comprises a - 
broadcasting station 1 1 which either a multiplex broad- 
casting by ofHBS, GS, a terrestrial wave television,,or.Flvl 
broadcasting or the like, or data broadcasting by a digital 
broadcasting, a database 12 in which various kinds of 
data including moving picture data is stored, a charging 
center 1 3, a receiving apparatus 1 4rfbr receiving the data 
broadcasting offered by the broadcasting .station- 11 , a 
data communication apparatus 15 for communicating 
with the database 12 and the user terminal 16 for using 
the data. » > * . * : 

The database 12 and the broadcasting station 11, 
and the database 1 2 and the charging, center. 1 3 are con- 
nected- with a direct means connecting with a communi- 
cation line such as a dedicated line or an indirect, means . 
suchuas a flexible disc or the like. The database 12 and . 
the data comrnunication apparatus 5 are connected with t 
a communication line 1 7 such as_a communication line. % 
or CATV line or the like. Then, the broadcasting station 

1 1 and the receiving apparatus 1 4 arecohnected with a 

radio wave 1 6 such as a terrestrial wave television broad- * 
casting, satellite television broadcasting, CATV broad- » * 
casting, FM broadcasting or a satellite data broadcasting 
or the like. The receiving apparatus 14 and the user ter- 
minal 1 8, and the data communication apparatus 1 5 and 
the user terminal 1 8 are connected with a direct means . . 
such as a connection cable or ^an indirect means such 
as a flexible disc or. the like. - 

What is shown with a solid line in Fig. 2 is an 
uncrypted data path and what is shown with a broken 
line is an encrypted data path. .. *v 

Incidentally, data exchange between the database 

12 and the broadcasting station Ail, and the database 12 
and the charging center 13 are,* in principle, carried out r 
with a dedicated line or a flexible disc. In addition, a public 
cline^a broadcasting satellite, a communication satellite 

or a terrestrial wave broadcasting can be usecMn such ^ 
a case; the data is encrypted, c - , - ; • c 

In this system, the secret-key cryptpsystem and the • . 
public-key cryptosystem are used. > • - 

The database 12 prepares the public-key Kbd and 
the private-key Kvd to supply the pubJic^key Kbd to the . 
broadcasting station 11. The broadcasting station 11 
which receives the public-key Kbd broadcasts it by a tele- 
text multiplexing broadcasting using scanning lines dur- 
ing the retrace blanking interval period, of > an arnalog r - 
television picture signal, the data broadcasting using a . 
sub audio band of the analog television audio signal, FM 
multiplex data broadcasting or digital data broadcasting. 
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Further, in this, case, a digital signature of the data-, 
base 1 1 can be done tp.the public-key Kbd. 

The data may be supplied without encrypting the 
menu in which the tities of data which can be used, the. « ■, 
content introduction of, the data, product catalogs, order „; 5 5 
forms, blank checks, the. copyright information for the, * 
convenience of , the data usage^ 

The receiving apparatus 1 4 which receives. the ^ 
transferred pyblic-key Kbd sends the public-key Kbd to * : 
the user, terminal 18; The\user terminal 18:which, ,io 
receives the transferred public-key Kbd stores the public 
key Kbd inthe recording medium such as a semiconduc- 
tor memory, a flexible disc, or a hard disc or the like.. 

Users who select the data which they request for/ i 
usage by means of menu or the introduction of contents is 
request for the use of data M to the database 12 via a : 
communication line 1 7 by the data communication appa- : 
ratus 15. . . , 

At this time, the user encrypts the public-key Kbd of v. 1 *: 
the database 12 by own secret- key Ksu whigh has so 
receivedfrom the database 12 - 7r 

Cksukbd=E (Kbd. Mksu) 

and transmits it to the database 12 . 25 

The database 12 decrypts the encrypted sea et -key 
Cksukbd of the user by the private-key Kvd:. s * ? 

. r. : Ksu=D (Kvd.CksuktxJ) \.) *rr :5 U. 

and encrypts the data M which is requested tor-use by , 
the decrypted user secret-key Ksu : - ; 

V : Cmksu=E (Ksu, M). . 

35 

and transmits it to the data communication apparatus 15 
of the user via the communication line 1 7. 

The user who receives the data Cmksu encrypted ? 
by own secret-key Ksu decrypts the encrypted data 
Cmksu with the user terminal:! 8 : \..<40 

; v . M=D (Ksu, Cmksu) s u 

to use it. - v j ■ 'j' 

This system. is ; provided with charging center 13 as 
which is incorporated with thedatabase 12. This charg- --\ 
ing center 13 is used when the data is provided with pay 
basis. In the case where the data is one which is provided . . 
with free such as shopping information or the like, this , 
charging center 13 is; not used. However, even the data so 
provided with free such as shopping Information or the 
like, the charging center is used in the case where 
charges are to be settled along :with orders.: - 

[Embodiment 2] . l*. - : . wss 

Fig. 3 shows a crypt key system according to ^ 
embodiment 2 in which thepresent invention is applied 
to a video on demand (VOD) system which broadcasts 



television programs corresponding to the requests from 
users. 

This system comprises a CATV station 21 , a charg- 
ing center 23, a receiving apparatus 24, a data commu- 
nication apparatus 25 and a user terminal 28. 

The charging center 23 is used when the television 
program is provided>on pay basis but not used when the - 
television program is provided without charges along 
with advertisement. 

In this system, the encrypted television broadcast 
programs and the crypt, key _ are transmitted with the 
CATV line 27 which is a single path. 

The CATV station 21 and the charging center 23 are 
connected with a direct means for electrical connection 
with a communication line such as a dedicated line or 
the like, or an indirect means such as flexible disc or the 
like. The CATV station 21 and the receiving apparatus 
24, the CATV station 21 and the data communication 
apparatuses are connected with the CATV cable 27. The 
receiving apparatus 24 and the user terminal 28; the data 
communication apparatus 25 and the user terminal 28 
are connected with a direct means such as a connection 
cable or an indirect means such as a flexible disc or the 
like. 

What is shown with a solid line in Fig. 3 is 'an 
uncrypted data path and what is shown with a broken 
line is an encrypted data path. . : % < 

Incidentally, theidata , exchange between the CATV 
station and ;theiicharging center? 23 is carried r out 
through a dedicated line- or a flexible disc in principle. 
Additionally, the data exchange is also carried out by 
means of the communication line or the broadcasting- 
satellite, ihe communication satellite and the terrestrial^ 
wave broadcasting. In this case, thedatais encrypted : 

In this system, the CATV system is treated as brie 
kind of database. As a crypt key method, the secret-key 
cryptosystem and the public- key cryptosystem are 
adopted. - • •< • r « > 

Users who use this VOD system either registers' their 
ownpublic-key:Kbu with the CATV station 21 in advance, 
or transmit the public-key Kbu by using the communica- 
tion apparatus 25 atthe time when the request for usage. 

The CATV station 21 encrypts the secret- key Ksb 
of the CATV station 21 by the transmitted public- key Kbu 

Of users. . - a :,rf V 

Cksbkbu^(KburKsb>/ -w- 

and transmits^ totfie data communication apparatus 25 
via the CATV line 27 ; ^ v ■ : .v r .-; 

> The television program M is endrypfed by using 
the secret-key Ksb of the'CATV station 2 1 r 

■•-■.!. " Cmksb=E (Ksb, M) * % 1 4 

and is broadcast to the receiving apparatus 24 via the 
CATV line 27. - 
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The user decrypts the received encrypted secret- 
key Cksbkbu of the CATV station 
21 by the private-key Kvu of user 

r Ksb=D (Kvu, Cksbkbu> * . ■ ■ ' • 5 

and decrypts the encrypted television program Cmksb 
using the decrypted secret-key Ksb of the .decrypted 
CATV station 21 r.,.v. . . . 

c M=D (Ksb, Cmksb) - rs 

for use. ,. . ,* - .;■ v • ■■ r 

In addition, this crypt key system is applicable, if 
encryption is available, to the television broadcasting 75 
other than CATV, audio broadcasting, or data broadcast- 
ing. As a method for transmitting the.crypt key from the 
broadcasting station, the teletext multiplex broadcasting 
using the scanning lines during the retrace blanking 
inverval of an analog television ppicture signal, the data \ so 
broadcasting using an sub audio band of the analog tel- 
evision audio signal, FM multiplex data broadcasting, or s 
digital data broadcasting can be also used.: & .s ■-. ■-; 

In addition, this crypt key system can be used when . 
the crypt key ^distributed in the data copyright manage- 25 
ment systetm which is described in prior Japanese Patent io* 
Applications Nos. 6-64889, .&-23Z673;. 6-2^4199,;^ 6v s.ui 
26420 1 and €r2S9959*piqoposed^y3h^ 

This^cryptdkey syfctemncan be ?aJso applied to a.case' 
where a recprdirtg medium sudvas a CD^ROMjot the o .30 
like in wfc»6h„a> plurality of informations are encyptedrwitht 
a plunatity^of different patterns and are recorded, which * 1 
is described in Japanese Laid-Open Patent Application ■? 
No. 6-1 32916, proposed by the present inventor. : /cv 

These inventions of previous^ applications are 35 
explained he/einhelow. . v . 

Art outline of the data copyright managementsys*' 
tern described in Japanese Patent Application Nor -6- : 
64889 is described as follows. 

To control the copyright in the display (including the 40 
process to sound), storage, copy, edit and transfer of dig- -i « 
ital datajn the database system including a real time 
transmission of a digital picture, any one or a plurality 
among a program for managing tbecopyrights a copy- 
right information and a copyright management message, 45 
are transmitted, when needed, in addition to a permit key 
for allowing the use of encrypted data corresponding to 
usage requests from users. 

The copyright management message: is idisplayed <r , 
on a screen and advises or warns to the user in case the so 
data is utilised other than the conditions ol user's request 
or the permission T the copyright management program : 
watches and controls in order that the data is not utilized 
beyond the conditions of user's request or the permis- 
sion. 55 

The copyright management program, the copyright v: 
information and the copyright management message are 
supplied together with a permit key in some cases, or 
they are supplied together with data in some other cases. 



Or, a part of them is supplied together with the' permit 
key, and other part is supplied with the data. 

For data, the permit key, the copyright management 
message/ the copyright information arid the copyright 
management program, there are the following "three 
cases: a case where these are r transmitted ^ with 
encrypted, and upon using, the" encryption is decrypted, ' 
a case* where they are transmitted with encrypted and 
remain in encrypted except being decrypted only when ""\ 
they are displayed, and a case where they are not 
encypted at all. ■ 

An outline of the^ data copyright mahagernent sys- 
tem described in Japanese Patenf Application No: 6- 
237673 is d^cribed as follows. 

This database copyright management system'cohi- 
prises a database in which uncrypted-data is stored, a 
data supply means of a broadcasting station such as sat- 
ellite broadcasting station for broadcasting the encrypted 
data from the database, or of a recording mediurn such 
as a CD-ROM where encrypted data' from the database 
is recorded, a communication network, a key control *" 
center for controlling a crypt key, and a copyright man- 
agement center for controlling copyrights of the data- 
base. Then, the database utilization program for using 
the database, the copyright management program for 



controlling the copyrights; a first crypt key and a second 

crypt key are used* - ■ - - • *s ■£ ~" ■ ■' - ■ - ■ ■ 

. A first user registers with the key control center in fa 
advance for using the database. At that time, the .data- m 
base use program is distributed. This database utiliza- 
tion program includes informatibri oh the first user-antf a ^ { ^ 
program for generating a crypt key unique to the first user 
with a predetermined algorithm by using the information. 

The data is stored in the" database without ~*r 
encrypted, and when it is distributed by broadcast, or - 
through recorded on a recording medium or a communi- * 
cation network, the data is encrypted by the f hrsfrcrypt 
key to an encrypted data. ■ ■ • - ■ # & 

The encrypted data is stored in recording medium t 
such as a semiconductor memory of the first user termi- y 



nal, a flexible disc or hard disc, when distributed via 
broadcasting or communication network, is stayed as is 
when recorded in a CD-ROM recording medium and dis- 
tributed, or is stored in the recording medium such as a 
semiconductor memory of the first user terminal/ a flex- 
ible disc or a hard disc or the like. ' >s - x '** \ : - " - 

The first user who uses the data * directly from the 
database requests a key for decrypting and using 1 the 
encrypted data to the key control center via the commu- * 
nication network. Information concerning the first-user is 
presented at this^time. • - 

The key* control center transfers the 5 information oh 
the first user to the copyright management cehter while 
the copyright management center uses information I 
concerning the first user to generate a crypt key peculiar 
to the first user by a predetermined algorithm, and the 
generated first user crypt key is used to encrypt the cop- 
yright management program, the first crypt key and the 
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second crypt key to be transferred to the key control . r 
center. • 

The copyright management program encrypted by 
using the crypt key generated by using the information 
on the first user is peculiar to the first user. s 

The key control center which receives the encrypted : : - 
copyright management program transmits to the first 
user terminal each of;theencrypted copyright manage- ■:<■<•< 
ment program, the first crypt fcey and the second crypt \ x 1 
key via the communication network. Then, the first user:, .10 
stores the received encrypted copyright management * 
program, the first crypt key and second crypt key in. a 
recording medium such as a semiconductor memory, a 
flexible disc, or a hard disc. i u-l : * ** 

The first user generates the crypt key peculiar to the is 
first user by using a database utilization program which 
is distributed in advance and using information on the 
first user with a predetermined algorithm. Then, the firstc 
user decrypts the encrypted copyright management pro- v, * 
gram, the encrypted first and second crypt keys, and the 20 
encrypted data is decrypted by the decrypted first crypt 
key. ■ (j! -v 

In the case of storing, copying and transferring the 
decrypted data, it is encrypted by the second crypt key 
decrypted with the decrypted copyright management 25 
program. Then, the encrypted data is stored in the 
recording medium such; as the semiconductor memory v,, 
of the f g®t user terminal. the;f lexible disc or the hard disc: vr q 
or the like. When the first userusesthe stored encrypted; vd 
data, it is decrypted by using the second crypt key.TherT, 30 
this operation is repeated for primary sue of the data:; * 

When the encrypted data is copied<on the external 
memory medium or is transferred to the second user tef - 
minal via the communication network, the first crypt key ; 
and the second crypt key are disued by the copyright .. 35 
management program. The first user then.cannot use 
the encrypted data. 

At this time, when the encrypted data is stored in the 
first user terminal, uncrypted information on the first user jt 
is added to the encrypted data which is stored. 40 

In the case where the first user uses the encrypted 
data gain, the first user obtains the first crypt key and the 
second crypt key from the copyright management center. 
With the regrant of the first crypt key and the second crypt 
key, it is confirmed that the.second user exists which has : as 
received the copy or the transfer of the encrypted data 
from the first user, and the fact of the second user is 
recorded on the copyright management center. 

The second user who has received the copied or 
transferred encrypted data requests for the secondary so 
use of the encrypted data to the copyright management r K 
center. The second user is not required to register with 
the key control center preliminary, unlike thef irst User. At 
the time of the request for data use, with the presentation *.r- 
of the information of the first user from which the ?<ss 
encrypted data has been copied or transferred to the 
copyright control center, the request is accepted. If the 
first user information is not presented at this time, the 
user is recognized to be the first user and not the second 



user who has received the. copy or the transfer of the 
encrypted data from the first user. Thus, the request for 
the secondary^use is not accepted. 

The copyright management center which acepts the 
request of the secondary use transmits the second crypt 
key for decrypting the encrypted data, the third crypt key 
for reencrypting and r ©decrypting the decrypted data 
and the copyright management program for the afore- 
mentioned decryption, the reencryption and redecryp- 
tion, to the second user, ~ ^ 

The outline of the copyright management system 
described in the Japanese Patent Application No. 6- 
264199 is described as follows. 

This copyright management system uses the first 
public-key- prepared by the user. » 
the first private-key corresponding to the first public-key, 
the second public-key, the second private-key corre- 
sponding to the second public-key, and the first secret- 
key and the second secret-key prepared by the data- 
base. % 

The database side encrypts the data which is not 
encrypted by using the first secret-key, and encrypts the 
first secret-key by the first public-key, and the second 
secret-key by the second public-key. These encrypted 1 
data and the encrypted 1 first secret-key > and secdnd : 
secret^key are transmitted to users. 

The user decrypts the encrypted first secret-key by 
using the first private^key'andndecrypt^ the r ericrypted 
datatoythetfecrypted .first secret-key fbruse>Ther>, the"* 
user decrypts the Encrypted Sec6nd>seteret-key by thfe? 
second private-key so that the decrypted second secret- 
key is used as a crypt key for diata storage, copy and 
transfer after the decryption of the data. ' ^ 

The outline of the data copyright management sys- 
tem described in the Japanese Patent Application No. 6- 
264201 is described as follows. 

In the case where new data is prroduced by editing 
a plurality of encrypted data which are obtained from the 
database and is encrypted to be supplied to others, the 
crypt key for a plurality of data which are original mate- 
rials and edit progranr as editing process' with 1 a digital 
signature are used as a use permit key. 

When the user "who has received the edited and 
encrypted data request&for use by presenting thedigital 
signature to the copyright management tertter, the Cop- 
yright management center recognizes the editor Ion the 
basis'of the digital signature? Only in the case where it is 
recognized that the editor is the authorized user of the 
edited data.'tHe crypt key for- use 16 prdvided to those 
who request for uSS. ^ r; • • - ' ' ; rr 

The outline of a method described in the Japanese 
Patent Application No. 6-269959 is explained as follows: : 

A first user receives the encrypted data fn which the 
original data is encrypted by the first crypt- key from the 
database and' decrypts the data at the time of usage. 
After that, the data is encrypted by a second crypt key 
generated with a predetermined algorithm using one out 
of the first crypt key, the first user data, and the data 
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usage frequency or a combination thereof . and is stored, : 
copied and transferred. \ ■•-<••.• . 

When the second user requests the secondary use : 
of the data, the data copyright management center gen- 
erates the second crypt key with a predetermined alga- 1 s 
rithm by using one out of the first crypt key of theoriginal ^ 
data, the first user data and the data use frequency or a •■: 
combination thereof to be provided, to the second, user.: 

The second user to whom the second crypt key is 
provided decrypts the encrypted original data by fusing io 
the second crypt key for usage.. • . r. r 

■ '• - sr. 

[Embodiments] -? '< 

The system shown in Fig. 4 is acrypt key system of .rs 
embodiment 3 wher^e the present invention Js applied to •> > 
the database system or the VOD system, ti 

Like the crypt key system shown in Bg. 3 of embod- 
iment.?,, in this crypt key system* the television broad- 
casting programs and the crypt key pass through a singles '-20 
path whiph is the CATV line; however, these maypass 
through different path, as a matter of couse. zai™ 

This system comprises a,CATV station 3t for data 1 
broadcasting, a data~managing<cerrter 33 such as data- 
base, a^video system or the like, ajeceiving apparatus a 25 
34, a data communication apparatus, 35 and ausetter* : 
minat38. - e ^ -' L;c ' :, . . , ± r :-j ,-v .1 e 'c • *> > • r T 

The datEfert&iHgiraj^ 
31 are connected with adir^meaas^cqnnecting withi^c 
a communication line such as aidedicated line okthelike ~ 
or with an indirect means syeh as flexible disc or the like; : a r 
The^GATV-station 31 and, thereqeiving apparatus 34, - ■ 
and the CATV station <3.1 and the data communication . r 
apparatus 35 are connected with the CATV- line 37. Inci- 
dentally, instead oj the CATV Itne&fc a communication 35 
line which is an appropriate data broadcasting or avail-. 
able , lor data communication can be used;iThe receiving 
apparatus 34 and the user, terminal 38,: and the data 
communication apparatus 35and thexuser terminal 
means are connected with a direct means such as a con- 40 
nection cable or witrran indirectmeanssuch as,a flexible 1, 
disc. i & : :3 • ijf : 

Whajjs shown witb.a solid line is an uncrypted data 
path in Fig. 4 and what is shown with ^.broken line isan 
encrypted data path. ,^\r-\ 1 }rr:i:\ \% :*5 

rThedatp is exchanged .between the -data managing*;; tv 
center 33 and the CATV station 31 inprfnciple with a dech > <s 
icated line or aflexjbledisc.-ln add*rtian?t&e*data may be 
also exchanged wifri a communication line, a broadcast- 
ing satellite, a communication satellite aod a terrestrial J so 
wave .^broadcasting in such r a ease, the i:data ^s 
encrypted. ^ : k- o'- / *r.-o--:.* ■* ;* 

This crypt key system adcpts-the^etcret-key pryptor 
system and a public-key cryptosysten^.. k. ■ v . m v.? 'near 0 

Th^data managing center 33 prepares andsuppjies > r 55 
to the CATV broadcasting station 3 1 the public-key Kbd.^ 
and tfte private-key Kvd common in all the data to be sup- 
plied and the secret-key Ksdi which is different from one V 
data to another. The CATV station 31 encrypts the 



received secret-key Ksdi by using the public-k^y Kbd of 
the data managing center 33 

Cksdikbd=E (Kbd,' Ksdi) , : • 

and broadcasts it by multiplex teletext broadcasting 
using scanning lines during the retrace line blanking 
interval of the analog television picture signal, the data 
broadcasting using a sub audio band of the analog tele- 
vision audio signal, FM mutiplex broadcasting, or digital 
data broadcasting . * ■ v j " 

For convenience of the data usage, menu srtowing 
titl esof available data and introduction of data outline can 
be also supplied without encrypted to promoted the use. 

User who sel ected the desired data requests by the 
menu or the content introduction requessts.for using the 
data to. the data managing center 33 via the CATV line 
37 by;using: the data communication line 35 through the 
CATYstation31 . At this time, the user transmits own pub- 
lic^keyKbu to the data managing center 33. ' f ; 

The data' managing center 33 which has received 
the request for use from the user enctyps the data M by 
the secret-key Ksdi: * 

*» c , ~ • • - - » . : - • - * 

^ p Cmksdi=E (Ksdi, M) v ' ,-jtc 

•' 7 • . .' . •■ *».-•"•" ' ■;. ^ ■ -i 

and transmits it to thtexiser^terminal 38. -At that ttfrtei the ' & & 
privalei^ery/Kvd of thedata managing 6enteFi€©Wypted $ J 

by threpabiic 2 keyKvuof the-use^whoMsreq^^edihe' J$ # 

use Ckvdkbu=E^Kbu, Kbd^ > ^ ' - ^ & ^ 

to be transmitted to theuser terminal 38. ■- ^ 

TJie userswhoc receives the encrypted private-key & ^ ....... 

Ckvdkbu of the data managing center decrypts the 2 e. 

encrypted private-key Ckvdkbu by the user private^key ' & ^ 

Kvu ) i . * ? ■■ 

"->*' ^ ■ , ; - ; " -1 - - **. .. , 

Kvd=D (Kvu, Ckvdkbu) ^ * 

and decrypts the encrypted secret-key Cksdikbd by the 
decrypted private-key Kvd of the data managing center 

Ksdi=D (Kvd, Cksdikbd);^ ~ ; ^ " * , 

decrypts the encrypted. data CmksdMby the^decrypted 
secret-key Ksdi of the data managirtg center v r ■ 

M=D (Ksdi,Cmksdr)-B 

and use it. - S. *. v . '.vr; 

[Embodiment 4] ■' • r < -r^ y c: zi . ; ^ 

Since the system structure of embodiment 4 is the 
same as: embodiment 3 shown in Fig. 4,. explanation 
ttiereof wiH be omitted. . >; " • . • - 

T this system adopts the secret-key cryptosystem 
and the public-key cryptosystem as the- crypt key sys- 
temsimilarly to embodiment.; In embodiment 3, the pri- 
vate-key Kvd of the data managing center is encrypted * 
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by the public-key Kbu of users who request for use While* 
in embodiment 4, the private-key Kvd of the data man- - 
aging center is distributed in advance by using the IC 
card or the like and stored in the user terminal In embod- 
, iment 3 data M is distributed corresponding to the 5 
request for data usage/ while in embodiment 4 the data s 
M is broadcast by means of the CATV line or the satellite j 
broadcasting irrespective of the request for data usage. * 

When the user subscribes a comprehensive con- V ,T 
tract for using the database with the data managing 16 
center, the private-key Kvd of the data managing center 
which is commonly used with all data to be supplied is 
previously distributed to users by a recording medium 
such as an IC card or the like or a CATV line 37, and 
stored inthe semiconductor memory of the user terminal 15 
38, the hand disc or a flexible disc . * : 

The data managing center 33 prepares a secret-key 
Ksdi different for each supplying data and a public-key 
Kbd, and supplies them to the CATV station 31. The 
CATV station 31 which receives the secret-key Ksdi 20 
encrypts the secret-key Ksdi by the public-key kbd 

Cksdikbd=E (Kbd, Ksdi) ' 

. tv - ■■ . ' * • i r; 

and broadcasts it by means of teletext multiplex broad- 25 
casting using scanning lines during the retrace blanking 
interval of the analog television picture signal, data 
broadcasting tlisihgthe sub audio band of the ahSI5g feP : ^ 
evision audio signal, FM multiplex data brc^dcastng : 6r - ^ 
digital data broadcasting. 30 

At this time, for the convenience 5 bf the data usage, 
menu showing the titles of data which can be used, or a 
content introduction for explaining the data outline for 
promoting the data usage can be also supplied without 
encrypted. 35 

The CATV station 31 encrypts the data Mby the 
secret-key Ksdi 

Cmksdi=E (Ksdi, M) 

and broadcasts it via the CATV line irrespective of the j 
request lor use: ' ■ * ■ - 

The user incorporates desired data out of the data 
which is broadcast via the CATV line on the basis of the ~ r 
menu or the content introduction into the user terminal f 45 
by using a receiving apparatus 34. 

The user decrypts the encrypted secret-key 4 - 
Cksdikbd by the private-key Kvd of the data managing > " 4 
center which is stored in T the semiconductor membry in * 
the user terminal 38 ; a hard disc or a flexible disc "50 

Ksdi = D (Kvd, Cksdikbd) " 

and decrypts the encrypted data Cmksdi by the r 
decrypted secret-key Ksadi : : * : : / : v 55 

* M=D (Ksdi, Ksdikbd) 

for use. 



Other modifications of the embodiments for distrib- r ' 
uting the crypt key will be explained. 

[Embodiment s] ; 

In aforementioned embodiments, the public-key Kbd 
of the data managing center is broadcast from the broad- 
casting station instead of the communication line. Thus, 
it is impossibfe to Confirm whether the public-key Kbd is 
justified or not. . . 

In such a case 1 , the private-Key Kvd of the data man- 
aging center is used for digital signature to the public-key 4 
kbd of the data managing center. 

Skbdkvd=E (Kvd, Kbd) 

to be broadcast together with the public-key Kbd of the 
data managing center. 

The user recognizes the digital signature Skbdkvd 
by the received public-key Kbd of the data managing 
center " : : 

Kbd=D (Kbd, Skbdkvd) 

and when it is justified;" use the public-key. >T :i c 

[Embodiments] 

Ih'^mbodim^nf 5; inthe ^'whfei^ the^at^imn- • 
aging center adopts the membership system for prelim- 
inarily registering the use of the database, the public-key 
Kbui of users who are members is also preliminarily reg- 
istered with the data managing center. •* 

The data managing center encrypts the public-key 
Kbd of the data managing center-by the public-key Kbui 
of each user ,;; 

CkbdkbubsE (Kbui, Kbd). - ts CJ 

Digital signature is made to the the public : key Kbd of the 
data managing center by using the private-key Kvd of the 
data managing center u : 

SkWkvdiE (Kvd, Kbd). - 

Then; the ehcr^ed -public-key CkbdkbSi different' frofh : : 
one user to anotherand th& digital signature 1 Skbdkvd 
are sent to the broadcasting station to broadcast the ** 
received encrypted public-key Ckbdkbui and the digital 
signature Skbdkvd. - 

At this time, the uncrypted user identification infor- 
mation of each user Is broadcast by adding to the 
encrypted public-key Ckbdkbui if necessary 

i^euerwhohasVeceivedthebrc^^ * 
public-key Ckbdlibtif arid thfe digital signature" Skbdkvd 
decrypits* the encrypted publfckey Ckbdkb of the data' 
managing center by the public-key Kvui 

4 Kbd=D (Kvui. Ckbdkbui) : : 
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and stores the decrypted public-key Kbd of the data man- 
aging center in the user terminal. _ , . 

The user recognizes the digital signature Skbdkvd 
by the received public-key Kbd of the data managing 
center s 

^Kbd=D (Kbd, SMrikvd), ■ '---A. 

and if it is justified, uses the stored public-key Kbd^qf the M 
data managing center. : u * . 1 *o 

In this manner, a crypt key different frprn one user, 
to another can be distributed. . • ■ ^ 



[Embodiment 7] 



75 



Users present their own public-key Kbu to the data 
managing center at each time.of access or request to the 
data managing center 

The. data managing center which receives the 
request from the user encrypts the requested; data M by 20 
the public-key Kbu of the user 

Cmkbu=E (Kbu, M) 

and sends it to the broadcasting station. The broadcast? - 2 $ 
ing station broadcasts the received encrypted data 

CmttXJ. & Xl; ; 

The users who receives the broadcast encrypted 
data Cmkbu.$ecrypts£y,^^^ 

. " M^D (Kyu.jCmkbu). : ~ r \ x v.',. 

and use it. . ~ . ... r : • 

Figs. 5(a) through 5(c) show the modified esamples 
which use the crypt key system of Jhe present invention. 35 

Each esample shown the structure in the figure is 
applied the crypt key system, in electronic market trans- 
action using the electronic data interchange system, to 
the credit settlement in retail shops shown in Fig. 5 (a); 
the settlement by, means of an electronic^check shown 40 
in Fig. 5 {b);andjhe whole sale conducted by makers and 
the like shown in Fig. 5 (c). ~ j . 

In these systems, a digital signature is used in addi- 
tion to the secret-key , cryptosystem., T^ese systems 
comprise a user 42, and a retail shop 43, a financial 45 
organization 44 or a, sfnolesaler 45 such-as a maker the 
like which is a World Wide WebifWYVW) server on the 
internet. :) - ; ■ -•■»•. 



the user secret-key Ksu bythepublicrkey Kbs of the shop 

43 • , - 

Cksukbs=E (Kbs, Ksu)~ »* 

and enters Mu items such as the order content, the pay- 
ment amount and a credit card number with.encrypted 
by the secret-key Ksu of user 42 on the basis of informa- 
tion such as advertisement, catalog, products-;descrip- 
tionand charges/prices list . ; 

- Cmuksu=E(Ksu, Mu),- ; : -r : - 

when needed, compresses Mu into a cpmpr^s^. doc- 
ument mu and sign by digital signature, by the private- 
key Kvu of the user 42 , - 1 . , r •* 



[Embodiment 8] 



so 



In the credit settlement in the shop shown in Fig r 5- fc , 7 
(a) . the shop 43 broadcasts a data Nfis such as qrder : fprrn. : ,,. 
format,, credit : card format, advertise^nents,, patalogs* 
preview, products- description,. and conterrt ir^cduction . ss 
of a database, and menu, charge schedule and price lisi, 
via the satellite 41 and a CATV line. c . ; , z » 

User 42 who receives the data Ms such as order 
form format and a public-key Kbs of the shop. 43 encrypts 



Smukvu=E (Kyu, mu),r , v. - : 

arjd transmits it to shop 43 attached with the publicrkey 
Kbu of the uaser 42 via the network 47.. . . 4 

The shop 43 which has received the order decrypts 
the encrypted secret-key Cksukbs of the user 42 by the 
private-key Kvs of the shop 43 

, . Ksu=D (Kys. Cksukbs)^ . ^&v.a 

' •-:;-::) , ?rr ; ^ -r,. . .'C . %\*>\ • -t.j V% 
and d^ry^t^^epcrypted order ^i^e^ »Qxny»^l?y : 
the dgpFypted secret-key Ksu qfvtfte user 42;.- rj&i^&v 

• : t Mu=Dh[Ksu, Cmuksu). . 

Then, order acceptance is executed. •."--{ 
When the digital signature Smukyu is recognized by 
the public-key Kbu which the user 42 attached 

mu=D (Kbu, Smukvu), *•„ - 

a receipt is sent to the user 42 via the network 47. 
.„ In this system, it is possible to prevent the unjustified 
use of the credit number because the credit card number 
entered in the order form is sent with encrypted. 

Further, the following process enables reliable trans- 
action:; . : * .-!•-:/:•< :, .. 
The shop -.43 compresseis the digital data of the 
order form format, the credit card .format, advertisement, 
catalog, a preview, products description, and content 
introductionof the database and menu/charge sched- 
ule/price list into a compressed document msl, with dig- 
ital signature by the private-key >£ys ; of the srjop,43 

Smslkvs=E (Kvs, msl) « c % J - 

and broadcasts it attaching { the public-key Kbs of the 
shop 43 so that users recognizes the digital signature 
Smslkvs by using the public-key kbs of the shop 43 

ms'=D (Kbs, Smskvs). 
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[Embodiment 9] ■ ; ; 

In the settlement by * means of electronic checks v 
shown in Fig. 5 (b), the bank as financial organization 44 
broadcasts the blank check format Mf which is digital s 
data attached with the pubilic-key Kbf of the bank 44 via 
the satellite 41 or the CATV line: 

The user 42 who receives the blank check format Mf . *t : - 
encrypts the secret-key Ksu of the user 42 by the bank r v.i 
pitolic-key Kb 10 

Cksukbf=E (Kbf, Ksu). ; 

enters Mu items concerning a payee and the payment 
amount with encrypted by the secret-key Ksu of the user is 

, Cmksu=E(Ksu, Mu); 

when needed, compresses Mu to the compressed doc- so 
ument mu, and sign by digital signature by using the pri- ? t 
vate-key Kvu of the user 42 s -.: . r 

Smukvu=E (Kvu. rnu) '•: .-• . . 

25 

and transmits them attaching the public-key Kbu of the -r 
user 42 and the encrypted secret-key Cksukbf of the user 
42 which is encrypted by the the publicrkeycKbf;afrthe : ysA 
bank 44 to the bank 44 via the network 47o?*£/*Moid sr'f to 
The bank 44 which receives the described check 30 
uses the bank private-key Kvf to decrypt the encrypted 
secret-key Cksukbf of the user 42 

Ksu=D.(Kvf, Cksukbf), 

decrypts the encrypted data Cmuksu of the payee and 
the payment amoount by the decrypted user secret-key 

Ksu . . j ; c ■ 

Mu=D (Ksu, Cmuksu) now 

and recognizes the described content,, and the currency 
exchange process is executed. 

Furthermore, the bank recognizes the user 42 by 
Smuksu with the digital signature using the public-key ■ i«5 
Kbu added by the user 42 

mu'eD (Kbu, Smuksu) 

encrypts the confirmation document Ms2 by the public- so 
key Kbu added by the user 42: , r. 

Cms2kbu=E (Kbu, Ms2) 

and send it back to the user 42 via a network 47. ss 
The user who receives the encrypted confirmation . b 
document Cms2kbu from the bank 44 decrypts the * 
encrypted confirmation document Cms2kbu by the pri- 
vately Kvu of the user 42 



~ 1 . - :• Ms2=D (Kvu, Cms2kbu) 

and confirms the" content. !V 

According to the system, since the patty to which the 
payment is made and the payment amount are 
encrypted and described in the check, it is possible to 
prevent the unjustified use of the content described in 
the check*. ?:> o . - 

In addition, the blank check format Mf which is digital 
data is xmpressed into a compressed document mf and 
signed by digital signature by using the private-key Kvf 
of the bank 44 

Smfkvf=E (Kvf, mf) 

to be broadcast attaching the public-key Kbf of the bank 
44. The user recognizes the digital signature Smskvs by 
the public-key Kbs of the bank 44 

mf =D (Kbf, Smfkvf). 

The confirmation document Ms is further compressed 
into a compressed document ms with digital signature 
by using the public-key Kbu added by the user * - 

Smskbu=E (Kbu, ms) -2 

Thus; the bank can rebo§ftize the user whb-has entered 

on therchecter.; 4 -- .^'rvi^r? m j*z \* :,ve;i-r\ : . 

[Embodiment 10] -.^ o i r ~V - 

At the wholesaler 45 of a m&kef or the like shown in 
Fig. 5 (C), the wholesaler 45 forms a proforma invoice 
format Mw1 into a^cbmpressed data mwl and sign by dig- 
ital signature by using the private-key Kvw of the whole- 
saler 45 

Smwlkvw=E (Kvw, mwl) « 

and broadcasts it attaching the public-key Kbw of the 
wholesaler 45 viaihe satellite 41 or CATV line. * 

The user 42 Which is a shop receives the broadcast 
proforma invoice format Mwl and the public-key Kbw of 
the wholesaler 45, and encrypts the proforma invoice 
request Mu by the public-key Kbw of4he 5 'wh6tesaler 45 

CrniikbweE (Kbw; Mu) - ^ ^ ^ 

and transmits it to the wholesaler 45 via the network 47. 

At this time, the proforma irn/oice request Mu is com- 
pressed to compressed Odata rriu'when needed/ and* 
signed- by the digital signature by using thepri vate-key : 
Kvu of the user 42 * :■ \o , r 

^ Smkvu=E (Kvu, mu) : 

to be transmitted together with the public-key Kbu of the 
user 42 to the wholesaler 45. 
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The wholesaler 45 which receives the encrypted 
prof or ma invoice request Cmukbw decrypts the 
encrypted proforma invoice request Cmukbwby the pri- 
vate-key Kvw of the wholesaler 45 , - « 

, Mu=D (Kvu, Cmukbw) . ,•:->-, 

and recognizes the described proforma invoice request 
Mu. ; . v 

Further, the whole safer 45 recognizes the digital ro 
signature Smkvu by the public-key Kbu of the user 42 

mu=D (Kbu, Smkvu) 

and estimates to the proforma invoice and encrypts the is 
profornia invoice Mw2 by the public-key Kbu of the user 

42 ■ r: 

« 

Cmw2kbu=D (Kbu, Mw2) 

and then, transmit it to the user 42 via the network 47. 

The user 42 who receives the encrypted proforma 
invoice Cmw£kbu from the wholesaler 45 decrypts it by 
the private-key^ Kvu of the userc42 1 r ;:t 

25 

Mw2=D (Kvu. Cmv»2kbu).. *o 

Accprcgng ta^Ws a^em sincfcthe pHblicrkey^ancburT 
the private-key are used, there is no fear that the^corlteetu no 
of the proforma invoice is stolen to be used and also dif- 30 
ferent proforma invoice can be made for each user: r 

In the systems shown in Figs. 5 (a) through 5 (c), 
since each , format and advertisement with no need Of 
secrecyjare broadcast via satellite or CATV broadcast- .. 
ing, the data, can be effectively transmitted r. . 35 

As explained above, a multimedia system can be i 
realized which combines general information media 
such as television broadcasting and audio broadcasting 
with data communication media using computers by 
using the crypt key system of the present invention, ao 
whhile the general information media and the data com- 
munication media has .been existing -bq far as an inde-< v 
pendentsystem each. * J - v . l- > . . 

A concrete structure for realizinfgthe multimedia sys- 
tem will be explained as follows^, . as 

The current television broadcasting is- provided by. r 
means of an analog system through terrestrial wave 
broadcasting, satellite broadcasting.Qr.GAry broadcast- 
ing. In the meantime, most general data communication 
line is a public telephone line., ; ; v < ; * , : > sp 

In such a; system structure,: the crypt key system 
according to embodiment > shown in Rg. 2 can be used » 
as a basic^tructure of. a system for realizing a videoronrf » 
demand. The broadcasting station broadcasts the pub- . . 
lie-key Kbb in multiplexing with the sub audio band of an ss 
audio zone in the scanning line of the vertical retrace 
interval of an analog television broadcasting program. 



Users who wish to use the television program 
encrypt their own secret-key Ksu by the public-key Kbb 
broadcast from the broadcasting: station . 

' f v • CKsukbb=E (Kbb, Ksu) ' 

and request for the usage by transmitting the the 
encrypted secret-key Cksukbb to-the. broadcasting sta- 
tion via a communication line. *: ^ 

The broadcasting station decrypts the encrypted 
secret-key Cksukbb of the users by the private-key Kvb 
of the broadcasting station . ^ - 

ksu=D (Kvb, Cksukbb) . :v 

scrambles the broadcasting program by the decrypted 
secret-key Ksu and broadcasting it. 

The users descrambles the scrambled program for 
use by their own secret-key Ksu. 

\ : By adopting such a structure, persons other than - 
users those who request to use the program cannot use 
the program. k 

As a basic structure of a system for realizing the 
video on demand and pay-per-view- in such a system 
structure, the crypt key system shown in embodiment 4 
or embodiment 5 in Fig. 4ean be used. .->'-*+*■' 

The broadcasting station 31 ericryptsby4he secret- < 
key Ksb of th£brpadcastingstatk>n 31 the r public?fcey Kbb 
of thebroadcastingKstation^l / .^'^^ 

' -Mr. Cksbkbb=E{Kbb > Ksl^: :* r : - 

and broadcasts it via the communication line 37 in mul- 
tiplexing with the scanning line or a sub audio band of * 
the retrace interval of the analog television broadcasting 
program. .< * :: . v : ..-s& 4 

User 38 who wishes to use the television program a 
38 requests for the usage by transmitting own public-key 
Kbu to the broadcasting station 31 via the communica- 
tion line 37. |, - 

The broadcasting station 31 scrambles the broad- 
casting program by the secret-key Ksb of the broadcast- 
ing station and broadcasts it via the communication line 
37. At this time, the private-key ■ Kvt> of the broadcasting 
station 3 1 is encrypted by the public-key Kbu of user 38 > 

Ckvbkbu=E (Kbu, Kvb) 

and is broadcast via the communication line 37. 

. i The user 38 decrypts the encrypted' private key 

Ckvbkbu of the broadcasting station -. *n 

31 by own private-key Kvu 

Kvb=D (Kvu, Ckvbkbu), 

decrypts the encrypted secret-key Cksbkbb of the broad- 
casting station 3 1 by the private-key Kvb of the decrypted 
broadcasting station 3.1:1 ■ 
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• : ■ - : . Ksb=P (Kvb, Gksbkbb) 

and descrambles the scrambled broadcasting pro- 
gramby the decrypted secret -key Ksb of the broadcast- 
ing station 31 . * *. 

By adopting such a structure, persons other than 
users who request to use the program cannot use them. 

Further, the.crypt key system can be applied to tel- 
evision shopping which is frequently conducted currently 
by combining the television broadcasting and the tele- 
phone. 

In the currently conducted television shopping which 
uses the analog television broadcasting, product intro- 
duction and sales method are presented on the televi- 
sion screen so that users record information on the sales 
method manually and request for the purchase thereof 
by a telephone on the basis of the recorded information. 

On the contrary, the crypt key system according to 
the present invention proposes a transmission of data of 
the order format and the check format in multiplexing with 
the scanning line of the vertical retrace interval or the 
sub audio band of the audio zone! - - 

In the meantime, an apparatus called personal com- 
puter television set which integrates the ; personal com- 
puter and the television set- or an apparatus which 
combines a video capture device which is realized as an 
IC card, a PC card or an insertion board and a personal 
computer^allows incorporation of the television piSfcure> 

With the combination of the multiplex data stfeh a§ 
an order format and a check format with a video capture 
device, an electronic television shopping can be con- 
ducted. 

In such a television shopping, when the television 
shopping product introduction display is broadcast, the 
order format and.the check format are broadcast in data 
multiplex with the scanning line of the vertical retrace liri- 
terval or the sub audio band of the audio zone. 

If the users operate the apparatus when the product 
introduction display of the desired product to purchase 
is broadcast, the order -format and the check format data 
are incorporated with the static display picture, i 

Users who wish to use the television shopping 
enters necessary items on, the order format or check for- 
mat to request for the purchase. To secure the safety of 
the transaction at this time, encryption by the public-key 
cryptsosystem or the secret-key cryptbsystem and dig- 
ital signature are used with the system, according to 
embodiments 1 to 5. ; ; 

At this time, the content of transaction can be con- 
firmed when the purchase order is requested by adding 
the static display picture ^of the product introduction 
together with the order, and the check. 

As a simple method, the order form format and the 
check format may be also transmitted as a television pic- 
ture so that necessary items are entered on the order 
format and the ;check format which are incorporated as 
a static display picture: - 



In addition, the order form format and the check for- 
mat can be transmitted via facsimile broadcasting which 
is multiplexed with the sub audio band of the audio zone. 

By adopting such a method, an electronic market 
5 using electronic datairrtercahnge (EDI) by means of a 
current analog television method can be realized with the 
television shopping. 

These video-on-demand system and the pay-per- 
view system can : be applied to the digital television 
10 broadcasting other than the analog television broadcast- 
ing. 

In the case where a CATV line is used as a commu- 
nication line, both the broadcasting and data communi- 
cation can be carried out with the CATV line only. 

is Further, these Video-on-demand system' and pay- 
per-view system can be also applicable to transmission 
of high-quality audio data and moving picture data per- 
formed in computer communication network system 
using low-speed public telephone line or high-speed 

20 integrated services digital network (ISDN) or in internet 
system connecting a plurality of computer communica- 
tion network, v , 

As an apparatus to be used, the receiving apparatus 
and the communication apparatus can be incorporated 

25 in the television set- Apparatuses can be also constituted 
as a separate apparatus by using a siet top box or the like. 

In addition i a constitution an apparatus referred to 
as a personal computer felevtsidn~set which is gradually 
prevalent or by <»rrtblhing-a video capture device 'which 

30 is realized -as an ICXcard a PC card or anlnseftion'board 
for transmitting £ television signal to the personal com- 
puter can be used. " - 

It. •:- V • -T> 

Claims { 

35 r-* .< j o , rv - . ' * V > •• * 

1 . Grypt key system comprising a broadcasting statiort 
(1 ), a database (2), a receiving apparatus (4), a data 
communication apparatus (5) and a User terminal 
(8), wherein i": ' T - - ' 

40 said database (2) and said broadcasting station (1) 
are connected wtthan online COrtirnQniGatiOn means 
suchas a dedicated -line, or thW^ike or a off-line 
means such as a flexible disc or the like; ^ 7 " 
said database (2) -arid ^said data communication 

45 * apparatus (5) -are conhected with a communication 
line(7) < ■: v:: ..■ o '.: 

said broadcasting -station' (1) and said receiving 
apparatus (4) are connected with a; radio wave (6); 
whereas between said receiving apparatus (4) and 

so -.i said user terminal (8) and between said data com- 
munication-apparatus (5) and said OsSer terminal (8) 
said areccoonected with directonlinemeans br-with 
oft-Hinemeans^ch as a flexible disc- •: 
said database (2) prepares a public-key and a pri- 

55 vate-key and supplies said public-key to said broad- 
casting station (1)^ ■ - ■' 
said broadcasting statibn (1): broadcasts said 
received public-key; • 

said receiving apparatus (4) transmits said received 
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public*key to said user terminal (8); 
said user terminal (8) stores said transmitted public- 
key; ... .. : 
a user encrypts a secret-key of theru^e^ by .said 
received public-k^y and transmits said secret-key at 
the time of request for the use of data which he 
desires, to said database (2); , , - : • 
said database (2) which has received the request |or 
data use decrypts said seeret^key of, said -user by . 
said private-key and encrypts the data -by said 
decrypted secret-key of said user to transmit the 
data to said data communication apparatus (5) via 
said communication line (7); and - _ 
said user transmits the-received cjata to said us^r 
terminal (8) to decrypt said data by^said secret-key- 



Crypt key system according to claim 1 wherein a digs 
rtal signature of said database (2) is provided on said 
public-key. ?. * rl 

Crypt key system, comprising a CATV station (31) , ><- 
a charging center, a receiving apparatus (34). adata 
communication apparatus (35) . .and a user terminal 
(38), wherein ; r ; ^ -> 

between said CATV station. (3 1 J arid sad receiving t2S y\ 
apparatus (34) anctbetween sa*d.£ATV station (31 ) 
and said da^ta:cornmunicati<xi apparatus (35) are 
conn&cted wfti ftQATM^ J3?h*. uctvm 5 cs 

between said neceiy4flgappara^(34.) and said taser -y q 
terminal (38) and, between Said data cOrnmunicatioo 30 
apparatus (35) and said-user terminal (38Jr are con- ■; »p 
nected with direct online means or with off-line 
means such as a flexible disc or the like; 5. 
a user preliminarily registers a public-key of said ? * 
user with said CATV station (31) or presents said 35 
public-key of said user at- the itime of ^request fop r 
usage; - . ■■ r < : : .> 

said CATV sJtation-(3 1 ) encrypts a secrefckey which 6. 
is a use permit key of said CATV (31 ) station by using 
.said public-key of said; user who^has requested the 40 x> 
usage and .also, encrypts &; television program by 
said secret-key, tqfcroadcast both yia said CATV line 
(37); and : t ? o - •■$,<■ » - . 
said us^r receives! said encrypted television pro- 
gram and said secret-key with said, receiving appa- 45 
ratus (34) and decrypts said secret-key by a private- 
key < correspond ing to said publicikey for deer ypting 
said television program by. said; decrypted secret- 
key. & . Vr-IC'i * ' ; ' - \\ 



Crypt key systerji comprising a CATV station (31), a 
data managing . center (33) , a receiving apparatus 
(34), a data communication -apparatus (35) and a 
useF tern?inal f (38)» whereinj, - i . ; >■ 

said CATTV station (31)^ and said; data managing 
center (33) are connected with online communica- 
tion means such as a dedicated line or the like, .or 
off-line means such as a flexible disc or thejike;,. 
between said CATV station and said receiving appa- 



ratus (34) and between said CATV station and said 
' data communication apparatus (35) are connected 
with a CATV line (37) ; er z o \: 

between said receiving apparatus (34) and saiduser 
5 a terminal (38) and between said data communication 
apparatus (35) and said use* terminal, (38) are con-, 
nected with direct online means or. with off-line 
means such as a flextole disc or 'the like; : 
said data managing center (33) supplies a public- 
io c key, and a secret-key which is a use permit key, for 
each data to be supplied, to said CATV station (31); 
SQid CATV station (31) encrypts said secret-key for 
each data by said public-key of data; managing : 
Cti center (33) to broadcast; • i ; ; 2-.." r. ^ 
rs : : , a user requests for theuse ofdata by using said data 
communication .apparatus (35) to said data manag- 
ing center (EE) via said. CATV linej(37) together with 
transmitting a public-keyiof said user;;* , 
said data managing center (33) encrypts the data by . 
said secret-key -for each data,; and encrypts said 
public-key of data managing center (33) by said pub- 
lic-key of said user and transmits encrypted data and 
encrypted said public-key of-data managing center 
(33) together with a privately of said data' manag- * 
iqg center. (33), to said user ; u : % & 

said userdeorypts said encrypted public-key ofdata 
managir^c^nter <33) by a private-key of said user, 
d%5Cy#s ssicjiencryptedisecrefc^ by 
deQRypte0;§aidpubljc T key of data jna&aging center 
(33) apd deayptsjencrypted data,by . decrypted said 
secret-key for pacti 0ata. „*j-.n. 

Crypt key system according to claim 4 wherein a dig- 
ital signature of said data managing center (33) is 
provided on said public-key of data managing center 

(33) , ^ - V - 

Crypt key system comprising a CATV station (31), a 
data managing center (33), -a receiving' apparatus 

(34) ; a data communicattoivappiaratus^SS), and a 
user terminal (38), wherein* i)r* r 
a public-key of a user is registered with said data 
managing center (33) in advancer- ' 
said data managing center (33) encyypts^a public- 
key of said data managing-center (33) by^said public- 
key of each user to provide a digital signature on Said 
public-key ofdata managing center {33) by a private- 
key of said data managing center (33)v " r y 
said encrypted public-key of said data-managing 

so - center (33). and said digital signatures! data 'man- 
aging center (33) are sent to said CATVi^tation (31) ; 
said CATV station.:(31) broadcasts said received 
encrypted public-key of data managing center (33) 
and said digital signature- -. 5 

55 r said.user decrypts saidaeceived encrypted public- 
key of data managing center (33) by saiti public-key " 
of said user and recognizes said digital signature by 
said decrypted public-key of data control center. 
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7. Crypt key system according to claim 6 wherein 
uncrypted user identification information of each 
user is further added to the encrypted public-key of 
said data managing center (33) to be broadcast. 

5 

8. Crypt key system comprising a CATV station (31), a 

data managing center (33), a receiving apparatus *v 
(4), a data communication apparatus (35), and a - r *\ '\ 
user terminal (38). wherein 

a user presents a public-key of said user to said data io 
managing center (33) upon requesting use of the 
data to said data managing center (33); 
said data managing center (33) receives the request 
lor data use from said user and encrypts the data 
requested by said public-key of said user to send to is 
said CATV station (31 ) ; 

said CATV station (31) broadcasts said received 
encrypted data; and 

said user who receives said broadcast encrypted 
data decrypts said encrypted data by a private-key 20 
of said user. 
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(54) Crypt key system for broadcast programmes 

(57) The invention relates to a crypt key system 
applicable to a television system, a database system or 
an electronic commercial transaction system or the like. 
This system consists of a broadcasting station 11, a 
database 12, a receiving apparatus 14, a data commu- 
nication apparatus 15 and a user terminal 18. As a crypt 
key system, a secret-key cryptosystem, a public-key 
cryptosystem, and a digital signature system are used. 
The keys used in the system are either ehcrypted or 
remain uncrypted to be supplied by broadcasting. The 
present invention is effective in the prevention of an 
unjustified use of the database system, managing cop- 
yrights, and in a pay-per-view system and a video-on- 
demand system. Further, the present invention is effec- 
tive in reaGzing an electronic market which uses an 
electronic data information system. 
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